Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/5R2rUyMYiRwA4iYjrclr-FFIZCE.roa
File: 5R2rUyMYiRwA4iYjrclr-FFIZCE.roa (raw, json)
Hash identifier: Ud1hYstDD+i9M4c4XcD7wASS9NaS58RQdITi3D4VwKc=
Subject key identifier: E5:1D:AB:53:23:18:89:1C:00:E2:26:23:AD:C9:6B:F8:51:48:64:21
Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Certificate serial: 3905
Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/5R2rUyMYiRwA4iYjrclr-FFIZCE.roa
Signing time: Thu 04 Apr 2024 14:52:24 +0000
ROA not before: Thu 04 Apr 2024 14:52:24 +0000
ROA not after: Fri 31 Jan 2025 01:13:46 +0000
asID: 24426
IP address blocks: 43.239.0.0/19 maxlen: 19
101.78.32.0/19 maxlen: 19
103.35.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14597 (0x3905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA
Validity
Not Before: Apr 4 14:52:24 2024 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=E51DAB532318891C00E22623ADC96BF851486421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3d:25:7d:11:16:df:80:2e:d3:b4:9f:5c:90:
d2:2c:1f:1a:24:81:8c:4d:c7:8f:22:0a:f7:65:7c:
22:37:77:82:0f:ec:8f:36:45:13:54:07:53:e7:f0:
0c:f7:14:9b:9f:03:e0:42:a1:d6:ff:8a:4b:c0:8e:
49:1e:5c:bb:51:85:45:74:4a:25:6e:82:62:0a:a5:
29:86:1f:60:08:b8:2b:3a:7f:3a:0a:ec:68:11:34:
9c:9f:cd:75:cd:48:ef:75:eb:97:9e:ed:d1:5f:15:
47:13:6e:12:fc:8b:57:46:49:20:f3:7c:a8:fb:8b:
1a:b3:f0:a5:72:f6:7c:1f:d9:82:4d:3b:6f:29:eb:
93:70:7c:48:c8:13:e4:9c:4e:bc:ce:a8:2f:39:be:
80:f8:ef:c7:f3:1b:f7:6d:13:7c:ca:fd:0d:f2:b4:
6b:2b:2b:5e:b4:a7:91:b7:2a:ed:b9:22:90:19:3f:
bc:da:4a:da:16:19:83:04:bc:db:8a:e7:68:44:05:
62:91:8c:07:46:55:b5:a4:8e:02:75:df:dd:5b:25:
db:92:94:26:22:4e:5d:f6:87:0e:d3:ea:d2:70:01:
c0:df:39:61:30:d6:2c:6d:fe:0f:eb:08:05:89:54:
42:f4:0c:98:3d:20:2f:4e:23:ee:84:08:1c:01:2d:
1e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1D:AB:53:23:18:89:1C:00:E2:26:23:AD:C9:6B:F8:51:48:64:21
X509v3 Authority Key Identifier:
keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/5R2rUyMYiRwA4iYjrclr-FFIZCE.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.0.0/19
101.78.32.0/19
103.35.0.0/19
Signature Algorithm: sha256WithRSAEncryption
40:cf:fa:d7:82:9c:a0:d8:26:f4:5a:f5:93:20:96:1d:f2:33:
4a:0c:00:f3:40:14:e9:39:e6:f2:fa:c3:d7:96:e6:6e:7d:b3:
2c:99:6d:fc:29:b7:cf:32:5d:89:b1:ae:42:b4:18:e8:40:c1:
ef:39:28:f7:de:3f:05:c1:92:03:45:07:9c:9c:b1:02:cb:55:
96:97:ef:a3:77:cf:43:c5:fe:8f:4c:0c:5d:7c:e3:7a:fd:e6:
88:e6:e5:5b:1b:aa:2c:29:ba:7f:c7:b1:7f:32:e3:78:d6:31:
b3:41:55:38:73:c5:49:51:39:6a:85:36:d3:22:47:0a:4f:95:
2d:e2:64:e1:d9:f7:40:19:83:ed:fc:2e:14:e0:c3:6e:bf:82:
d8:8f:e8:28:1a:8b:9b:c3:2c:9a:b0:d2:f0:27:9d:fd:96:99:
c4:ce:e1:5e:91:36:6f:81:82:a0:09:64:f5:93:fc:73:16:ca:
a2:52:12:8b:98:f6:46:2c:cf:97:09:cc:21:0c:4c:bd:24:a4:
b3:2e:5a:cb:23:41:c3:27:06:25:c1:d4:c9:0e:a4:09:5f:29:
43:c3:d6:42:c0:e3:1c:bc:be:e5:48:d3:02:0a:fd:0c:8b:b4:
15:b2:2c:1d:db:fd:2b:2e:d0:14:e2:0d:6b:da:46:37:ec:3d:
82:2e:c6:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:48:15 2024 by rpki-client on console-ams.rpki-client.org